Win a copy of Mesos in Action this week in the Cloud/Virtualizaton forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Let MySQL MD5 or let Java MD5

 
Gregg Bolinger
GenRocket Founder
Ranch Hand
Posts: 15302
6
Chrome IntelliJ IDE Mac OS X
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I don't know if it really comes down to preference or performance, but I was wanting some opinions on this.
Should I let JAVA Security MD5 my passwords so that I can insert and verify passwords stored in MySQL, or should I just use MySQL's MD5 function in the SQL Statement?
The only thing I am concerned with if letting MySQL handle this is if I want to support different DB Vendors.
[ September 19, 2003: Message edited by: Gregg Bolinger ]
 
David O'Meara
Rancher
Posts: 13459
Android Eclipse IDE Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I like to let the database do it, although I agree that it is something that may introduce vendor-lockin.
The reason I prefer it in the database is that it enforces password security in the database. If Java is responsible you run the risk of someone accidentally or deliberately not encrypting the password.
 
Gregg Bolinger
GenRocket Founder
Ranch Hand
Posts: 15302
6
Chrome IntelliJ IDE Mac OS X
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks David. I wonder how important multiple DB support is these days. To me, installing MySQL isn't that big of a deal, even if it is just for one app.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic